New Rust-Based Malware Steals s from Fake Gaming Sites

Myth Stealer is a Rust-based malware spreading through fake gaming sites, tricking s with fake windows and stealing sensitive browser and app data.

The Trellix Advanced Research Center discovered Myth Stealer as a dangerous malware, which developers built using the Rust programming language. The malware first appeared on Telegram during late December 2024 as a free trial, before transitioning to a paid subscription service.

The malware primarily spreads through fake gaming websites, which present themselves as game-related software to deceive s. The malware displays a deceptive interface to victims, making them believe the application is secure while it steals crucial data, including s, cookies, and autofill information from Chrome and Firefox browsers.

Researchers explain, “The malware authors regularly update stealer code to evade AV detection and introduce additional functionality such as screen capture capability and clipboard hijacking.”

The malware employs sophisticated methods to conceal itself through code string obfuscation and sandbox detection, evading security tool analysis. The malware attempts to gain istrative privileges to steal additional data, while hijacking the clipboard to substitute cryptocurrency wallet addresses, resulting in s sending money to attackers.

The malware transfers all stolen data to its command server, occasionally ing screenshots of the compromised computer system.

The malware operators use Telegram channels to market their product through cryptocurrency payments and Razer Gold credit transactions. The Telegram groups operated separately to sell stolen s until Telegram took them down.

Experts warn, “The consistent development and enhancement of Myth Stealer underscore the attackers’ determination to stay ahead of security defenses, posing a serious and persistent risk to s.”

You should prevent software s from untrusted websites while maintaining current security software updates.